[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: pf compatiblity w/ other unix OS

To: OpenBSD-lists <openbsd-lists@encipher.net>
Subject: Re: pf compatiblity w/ other unix OS
From: Gunnar Wolf <gwolf@campus.iztacala.unam.mx>
Date: Mon, 3 Jun 2002 09:49:58 -0500 (CDT)
Cc: misc@openbsd.org

> Hello,
>
> Does anyone know if pf is compatible with other Unix platforms especially
> RedHat Linux?

PF was developed specifically for OpenBSD, and runs only on OpenBSD.
IPF does run on many Unixes, but not on Linux. Oh, and by the way, take a
deep look at its license - It got kicked from OBSD in favor of PF because
of a disturbing lack of freedom.

In Linux you have ipchains and/or iptables, depending on your
distribution. I manage some Linux boxes - I highly doubt I am the only one
preferring PF's syntax...

You can take a look at hlfl - a tool to mantain a single set of rules and
translate them to whatever OS you prefer. From Debian's description:

Description: High Level Firewall Language
 HLFL translates your high level language firewalling rules
 into usable rules for ipfw, IPFilter, ipfwadm, IPChains,
 Netfilter, and Cisco.

(note that IPFilter's syntax is very similar to PF, you might be able to
generate PF filters from it too)

I don't particularly like hlfl's syntax, and don't use myself, but you
might find it useful.

Greetings,

-- 
Gunnar Wolf - gwolf@campus.iztacala.unam.mx - (+52-55)5623-1118
PGP key 1024D/8BB527AF 2001-10-23
Fingerprint: 0C79 D2D1 2C4E 9CE4 5973  F800 D80E F35A 8BB5 27AF

References:
- pf compatiblity w/ other unix OS
  - From: "OpenBSD-lists" <openbsd-lists@encipher.net>

Prev by Date: Re: Non-US Crypto HW
Next by Date: Re: pf compatiblity w/ other unix OS
Prev by thread: Re: pf compatiblity w/ other unix OS
Next by thread: Re: pf compatiblity w/ other unix OS
Index(es):
- Date
- Thread